GDPR Compliance

Last updated: May 22, 2026

1. Our Commitment to GDPR Compliance

Pro Angler UK is committed to complying with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. This document explains how we protect your personal data and respect your privacy rights.

2. Data Controller Information

Pro Angler UK is the data controller responsible for your personal information:

Pro Angler UK
Unit 17 Riverside Business Park
Thames Valley
RG8 9PL
United Kingdom
Email: [email protected]

3. What Personal Data We Collect

We collect and process the following categories of personal data:

Identity Data

  • Full name
  • Username or similar identifier

Contact Data

  • Email address
  • Postal address
  • Postcode

Transaction Data

  • Details of equipment purchased
  • Payment information (processed securely by third-party providers)
  • Order history

Technical Data

  • IP address
  • Browser type and version
  • Device information
  • Cookie data

Usage Data

  • How you interact with our website
  • Pages visited and time spent

Marketing and Communications Data

  • Your preferences for receiving marketing communications
  • Communication history

4. Lawful Basis for Processing

We only process your personal data when we have a lawful basis to do so:

Contract

Processing is necessary to perform our contract with you when you purchase equipment or use our services.

Consent

You have given clear consent for us to process your personal data for specific purposes, such as marketing communications.

Legitimate Interests

Processing is necessary for our legitimate interests or those of a third party, provided your rights do not override those interests. This includes:

  • Improving our services and website
  • Detecting and preventing fraud
  • Network and information security
  • Internal business analytics

Legal Obligation

Processing is necessary for compliance with legal obligations, such as tax and accounting requirements.

5. Your Rights Under UK GDPR

You have the following rights regarding your personal data:

Right to Be Informed

You have the right to clear, transparent information about how we use your personal data.

Right of Access

You can request a copy of the personal data we hold about you, free of charge. We will respond within one month of your request.

Right to Rectification

You can request that we correct any inaccurate or incomplete personal data we hold about you.

Right to Erasure (Right to be Forgotten)

You can request deletion of your personal data in certain circumstances, including:

  • The data is no longer necessary for the purpose it was collected
  • You withdraw consent and there is no other legal basis for processing
  • You object to processing and there are no overriding legitimate grounds
  • The data has been unlawfully processed

Right to Restrict Processing

You can request that we limit how we use your personal data in certain situations, such as when you contest the accuracy of the data.

Right to Data Portability

You can request to receive your personal data in a structured, commonly used, and machine-readable format and have it transferred to another organization.

Right to Object

You can object to:

  • Processing based on legitimate interests
  • Direct marketing (including profiling)
  • Processing for research or statistical purposes

Rights Related to Automated Decision-Making and Profiling

You have the right not to be subject to decisions based solely on automated processing, including profiling, that produce legal effects or similarly significantly affect you.

6. How to Exercise Your Rights

To exercise any of your GDPR rights, please contact us:

  • Email: [email protected]
  • Subject line: "GDPR Rights Request"
  • Include: Your full name, email address, and specific request

We will respond to your request within one month. If your request is complex, we may extend this period by two additional months and will inform you of the extension.

7. Data Security Measures

We implement appropriate technical and organizational measures to protect your personal data:

  • Encryption of data in transit and at rest
  • Regular security assessments and audits
  • Access controls and authentication
  • Employee training on data protection
  • Secure data storage and backup systems
  • Incident response procedures

8. Data Breach Notification

In the event of a data breach that is likely to result in a risk to your rights and freedoms, we will:

  • Notify the Information Commissioner's Office (ICO) within 72 hours of becoming aware
  • Notify affected individuals without undue delay if the breach is likely to result in a high risk
  • Document all data breaches and remedial actions taken

9. Data Retention

We retain personal data only for as long as necessary:

  • Order and transaction data: 7 years (legal and accounting requirements)
  • Marketing communications: Until you unsubscribe or request deletion
  • Website analytics: 26 months maximum
  • Customer support records: 3 years after last contact

10. International Data Transfers

If we transfer your personal data outside the UK, we ensure appropriate safeguards are in place, including:

  • Adequacy decisions by the UK government
  • Standard contractual clauses approved by the ICO
  • Binding corporate rules

11. Third-Party Processing

We work with trusted third-party processors who assist with:

  • Payment processing
  • Delivery services
  • Email communications
  • Website hosting and maintenance

All third-party processors are required to maintain GDPR compliance and have appropriate data processing agreements in place.

12. Children's Data

Our services are not directed at children under 16. We do not knowingly collect personal data from children. If we become aware that we have collected data from a child, we will delete it promptly.

13. Marketing Communications

We will only send you marketing communications if:

  • You have given explicit consent, or
  • We have a legitimate interest (soft opt-in for existing customers)

You can opt out of marketing communications at any time by:

  • Clicking the unsubscribe link in any email
  • Contacting us at [email protected]
  • Updating your preferences in your account

14. Cookies and Tracking

We use cookies and similar technologies. For detailed information, please see our Cookies Policy.

15. Data Protection Officer

For questions about our GDPR compliance or to exercise your rights, contact:

Data Protection Enquiries
Pro Angler UK
Email: [email protected]

16. Complaints

If you believe we have not complied with UK GDPR, you have the right to lodge a complaint with the supervisory authority:

Information Commissioner's Office (ICO)
Wycliffe House
Water Lane
Wilmslow
Cheshire SK9 5AF

Tel: 0303 123 1113
Website: www.ico.org.uk

17. Updates to This Document

We may update this GDPR compliance document to reflect changes in our practices or legal requirements. The "Last updated" date at the top indicates when changes were last made.

18. Contact Us

For any questions about our GDPR compliance or data protection practices:

Email: [email protected]
Address: Unit 17 Riverside Business Park, Thames Valley, RG8 9PL, United Kingdom